X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=inc%2Fmodules%2Fchk_login.php;h=bba4b8c3e410951b366493dec175915ab38103e1;hb=2ec9007220186d54f84846871ed1f7638c29baf7;hp=9be4517da900ab7d470195e236f3d02463c3aeb2;hpb=75ad748a68473ace540251427a74fb781b1145e9;p=mailer.git
diff --git a/inc/modules/chk_login.php b/inc/modules/chk_login.php
index 9be4517da9..bba4b8c3e4 100644
--- a/inc/modules/chk_login.php
+++ b/inc/modules/chk_login.php
@@ -10,7 +10,12 @@
* -------------------------------------------------------------------- *
* Kurzbeschreibung : Pruefen ob die Login-Cookies gesetzt sind *
* -------------------------------------------------------------------- *
- * *
+ * $Revision:: $ *
+ * $Date:: $ *
+ * $Tag:: 0.2.1-FINAL $ *
+ * $Author:: $ *
+ * Needs to be in all Files and every File needs "svn propset *
+ * svn:keywords Date Revision" (autoprobset!) at least!!!!!! *
* -------------------------------------------------------------------- *
* Copyright (c) 2003 - 2008 by Roland Haeder *
* For more information visit: http://www.mxchange.org *
@@ -32,64 +37,85 @@
************************************************************************/
// Some security stuff...
-if (ereg(basename(__FILE__), $_SERVER['PHP_SELF']))
-{
- $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
+if (!defined('__SECURITY')) {
+ $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), '/inc') + 4) . '/security.php';
require($INC);
}
-OPEN_TABLE("500", "guest_login_header dashed", "center");
+// Initial message part
+$message = "{--VALIDATING_LOGIN--}";
-OUTPUT_HTML ("
".VALIDATING_LOGIN."
");
+if (isUserIdSet() && (isSessionVariableSet('u_hash'))) {
+ // Login failures are supported since 0.4.7
+ // Do we have 0.4.7 of sql_patches or later?
+ $add = '';
+ if (GET_EXT_VERSION('sql_patches') >= '0.6.1') {
+ // Load them here
+ $add = ", login_failures, UNIX_TIMESTAMP(last_failure) AS last_failure";
+ } // END - if
-if (!empty($GLOBALS['userid']) && !empty($_COOKIE['u_hash']) && !empty($_COOKIE['lifetime']))
-{
// Get theme from profile
- $result = SQL_QUERY_ESC("SELECT curr_theme FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d LIMIT 1",
- array($GLOBALS['userid']), __FILE__, __LINE__);
- list($NewTheme) = SQL_FETCHROW($result);
+ $result = SQL_QUERY_ESC("SELECT curr_theme".$add." FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1",
+ array(getUserId()), __FILE__, __LINE__);
+
+ // Load data
+ $data = SQL_FETCHARRAY($result);
+
+ // Free result
SQL_FREERESULT($result);
// Change to new theme
- @setcookie("mxchange_theme", $NewTheme, (time() + 60*60*24*365), COOKIE_PATH);
- $_COOKIE['mxchange_theme'] = $NewTheme;
+ setSession('mxchange_theme', $data['curr_theme']);
+
+ // Remmeber login failures if available
+ if (GET_EXT_VERSION('sql_patches') >= '0.6.1') {
+ // Reset login failures
+ SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data`
+SET login_failures=0, last_failure='0000-00-00 00:00:00'
+WHERE userid=%s
+LIMIT 1",
+ array(getUserId()), __FILE__, __LINE__);
+
+ // Store it in session
+ setSession('mxchange_member_failures', $data['login_failures']);
+ setSession('mxchange_member_last_fail', $data['last_failure']);
+ } // END - if
+ // Bonus is not given by default ;-)
$bonus = false;
- die("
".print_r($CONFIG, true).""); - if ((GET_EXT_VERSION("sql_patches") >= "0.2.8") && (GET_EXT_VERSION("bonus") >= "0.2.1")) { - // Update last login - $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data + if ((GET_EXT_VERSION('sql_patches') >= '0.2.8') && (GET_EXT_VERSION('bonus') >= '0.2.1') && (getConfig('bonus_login_yn') == 'Y')) { + // Update last login if far enougth away + SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_user_data` SET last_login=UNIX_TIMESTAMP() -WHERE userid=%d AND last_login < (UNIX_TIMESTAMP() - %d) -LIMIT 1", array($GLOBALS['userid'], $CONFIG['login_timeout']), - __FILE__, __LINE__); - if (SQL_AFFECTEDROWS($link) == 1) $bonus = true; - } - if (($bonus) && ($_GET['mode'] == "bonus") && (EXT_IS_ACTIVE("bonus"))) { +WHERE userid=%s AND last_login < (UNIX_TIMESTAMP() - %s) +LIMIT 1", + array( + getUserId(), + getConfig('login_timeout') + ), __FILE__, __LINE__ + ); + if (SQL_AFFECTEDROWS() == 1) $bonus = true; + } // END - if + + if (($bonus) && (REQUEST_GET('mode') == 'bonus') && (EXT_IS_ACTIVE('bonus'))) { // Output message with added points - OUTPUT_HTML(" - ".BONUS_LOGIN_BONUS_ADDED_1." - ".TRANSLATE_COMMA($CONFIG['login_bonus'])." ".POINTS." - ".BONUS_LOGIN_BONUS_ADDED_2." -"); - } - elseif (EXT_IS_ACTIVE("bonus")) - { + $message .= "